The Entrusans™ IDS FAQ

What does tamper resistant mean?

Tamper resistant means that a website owner employs extra measures to detect malicious changes to their website. Malicious changes to websites can be covered up even with security plugins installed. This is why the Entrusans IDS stores file change history off-site. In order to go undetected hackers need access to the file change history so they can modify the history to cover up changes they make to files on the website. Storing the website file change history off-site adds another layer of security that makes tampering with files significantly more difficult to conceal.

Does Entrusans IDS correct any problems it finds?

Entrusans IDS does not correct problems. Entrusans IDS captures file change history and uses that history to detect changes on a website for analysis. The website owner will determine if the changes to the website are legitimate or malicious.

Why are there two steps in activation?

The first step is to activate the plugin from the WordPress plugin screen. The second activation is to
establish contact with the Entrusans IDS server to initiate monitoring and the capture
of file system snapshots.

What happens when a scan fails?

Entrusans IDS scans are subject to time out for many reasons including the owner’s website could be offline, there could be a network failure or a hacker could have deleted the Entrusans IDS client. The Entrusans IDS scanner retries in the event of a time out and after successive failures notifies the website owner via email that the scans are failing.

If I do not receive an email does that mean I’m OK?

Entrusans IDS only sends emails if there are changes to files on your website.

How often does the Entrusans IDS scan?

Every 24 hours.

Does this plugin work with WPMU?

Entrusans IDS supports any PHP based website. The pricing model for the Entrusans IDS is based on the number of domains associated with a multi-site web installation.